-
**Is your feature request related to a problem? Please describe.**
In some cases the maintainers seemed to perceive a clear differentiation with other security tools, like CodeQL and dependabot in a …
-
### Tested versions
4.4.dev [842f98239713fd10cfd648cd6aa3781895f289eb]
### System information
Linux Pop OS 22.04
### Issue description
Note: I have a fix in my fork and will have a PR s…
TCROC updated
1 month ago
-
For your awareness:
As the tools are not a PoC (even since the first release), the long overdue change was conducted: The repo https://github.com/csaf-poc/csaf_distribution moved to https://github.co…
-
**What happened**:
When lws is in rolling update, any replicas that are not updated yet, but restarted due to failure handling, the worker statefulset will be recreated with updated lws worker te…
-
### Description
SInce a day or two when I checked to upgrade zopen tools with success, I now get
1 the message in the title
2 and the upgrade tries to basically try all packages that we have withou…
-
Jira ticket: https://cncfservicedesk.atlassian.net/browse/CNCFSD-2006
Help design and implement a page on the tag security site to interactively list software supply chain security tools.
-
### Reproduction steps
look at https://www.jenkins.io/doc/developer/extensions/
### Expected Results
something under `script-security`, e.g. for https://github.com/jenkinsci/script-security-plugin/…
-
Would it be possible to bump path-to-regexp to a more recent version that contains the fixes for CVE-2024-45296. The current dependency on 2.4.0 is causing our application to be flagged by our custome…
-
The Safe Extensions section currently has a bunch of unnecessary baggage, which we should rearrange and/or delete.
The core of what Safe Extensions needs to define is: What does an extension need t…
-
Firebase App Check provides security layer to the Firebase tools and make sure that all requests are from legit sources.
I am looking for a solution to restrict all Firebase tools from unauthorised s…